Skip to main content

Centralized Logging (Splunk)

Search, monitor, and analyze machine-generated big data

Splunk searches, monitors, and analyzes machine-generated big data via a web interface and can generate graphs, reports, alerts, dashboards, and visualizations.

Features

The Splunk service includes:

  • Direct access to search your logs
  • Ability to onboard logs from Amazon Web Services (AWS) and Google Cloud Platform (GCP), as well as on-premise servers
  • All software licenses and annual maintenance, server hardware, and storage
  • 18 months of log retention
  • 6 months of log backup
  • System administration support for the servers and storage
  • Periodic log volume reports and alerts

Contact your University IT support team to learn how to access your logs.

Designed for

Stanford University and hospitals, SLAC

Any server containing Moderate or High Risk Data, as defined by the Information Security Office, must have the operating system logs sent to Splunk. If you set up a new server that will manage Moderate or High risk data, submit a Help request to have the server setup to use Splunk.

Requirements

Service subscription and a valid PTA in Oracle Financials.

Data security

The Splunk service may be used with logging information generated by Low, Moderate, or High Risk systems as defined by the Stanford University Information Security Office, but do not send High Risk Data to Splunk.

Rates

  • For systems managed by University IT, Splunk is included at no additional fee.
  • For systems not managed by University IT, Splunk is available for a monthly fee based on the average GB of logs ingested per day during the previous 30 days (see Rates).

Get started

To begin using Splunk, submit a Help request.

After the Splunk Solutions team has setup your servers to access Splunk, follow the instructions below to install and use Splunk.

Get help

Submit the appropriate Help request:

Learn more

Last modified